Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/LdNdtZl7lZqgqeHv3WdE6Wj9Qus.roa
File: LdNdtZl7lZqgqeHv3WdE6Wj9Qus.roa (raw, json)
Hash identifier: p3d1FgXgNrQVc2k7+8DUkoNJFzTWhOYqH8wWKOyrGXc=
Subject key identifier: 2D:D3:5D:B5:99:7B:95:9A:A0:A9:E1:EF:DD:67:44:E9:68:FD:42:EB
Certificate issuer: /CN=2C20881A0EFD0664A591AF3095D29935EF9BC361
Certificate serial: 0200
Authority key identifier: 2C:20:88:1A:0E:FD:06:64:A5:91:AF:30:95:D2:99:35:EF:9B:C3:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LCCIGg79BmSlka8wldKZNe-bw2E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/LdNdtZl7lZqgqeHv3WdE6Wj9Qus.roa
Signing time: Wed 04 Dec 2024 07:18:59 +0000
ROA not before: Wed 04 Dec 2024 07:18:59 +0000
ROA not after: Thu 28 Aug 2025 15:30:19 +0000
asID: 31898
IP address blocks: 2401:bf60:4ff8::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 512 (0x200)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2C20881A0EFD0664A591AF3095D29935EF9BC361
Validity
Not Before: Dec 4 07:18:59 2024 GMT
Not After : Aug 28 15:30:19 2025 GMT
Subject: CN=2DD35DB5997B959AA0A9E1EFDD6744E968FD42EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a2:05:97:e3:ff:44:de:a3:2e:ec:12:cc:19:
93:48:04:10:14:19:70:31:0d:6a:81:5a:c4:5f:02:
73:f4:46:c7:a8:36:b3:03:7c:01:0b:21:99:4b:43:
d9:f9:3f:a1:4b:3d:8f:bc:eb:d6:75:0e:85:ee:78:
83:f4:71:a2:75:60:ee:50:e5:f1:67:1c:0d:e1:86:
ec:37:39:19:20:67:15:e0:b5:dc:37:a2:35:76:7c:
5e:8b:1d:81:17:55:13:18:81:de:43:75:03:d3:4a:
a5:45:74:29:9e:8e:43:8c:61:c1:9b:5d:4b:13:fe:
0e:28:c7:e2:cf:8e:be:51:09:0a:09:9c:ec:54:a1:
1c:e6:70:26:d4:85:e8:08:16:0b:af:2f:1e:42:9a:
d7:85:6f:ec:55:60:65:94:68:42:d8:28:d9:6a:cb:
74:b3:44:38:61:fa:34:a1:90:4b:fc:ff:5c:52:56:
9b:55:c5:a3:b1:84:ae:15:24:8c:b0:28:fa:c1:b9:
19:98:38:8a:50:9e:fc:f5:17:a1:41:11:c7:55:6a:
f6:c2:c9:ef:f7:af:3f:72:ad:ed:ed:43:d4:6f:71:
8a:93:09:20:56:29:e2:a0:e9:d5:ce:4d:7a:fd:43:
f4:ed:2f:2a:f5:9e:00:5c:05:c7:d2:0c:de:ea:54:
81:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:D3:5D:B5:99:7B:95:9A:A0:A9:E1:EF:DD:67:44:E9:68:FD:42:EB
X509v3 Authority Key Identifier:
keyid:2C:20:88:1A:0E:FD:06:64:A5:91:AF:30:95:D2:99:35:EF:9B:C3:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/LCCIGg79BmSlka8wldKZNe-bw2E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LCCIGg79BmSlka8wldKZNe-bw2E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/LdNdtZl7lZqgqeHv3WdE6Wj9Qus.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:bf60:4ff8::/48
Signature Algorithm: sha256WithRSAEncryption
35:83:ac:bb:76:ed:e0:d8:0d:4f:9e:81:ce:f3:1f:2e:9d:11:
c2:8f:43:53:4c:64:a2:10:a1:dc:72:45:f2:47:48:5d:65:07:
36:6e:05:9b:02:26:37:4e:0d:1f:63:8f:1a:f1:bc:71:e0:38:
42:58:19:43:8d:14:f3:38:e5:c9:2e:13:6a:a4:7c:08:e8:b9:
54:f7:28:24:90:5c:0b:51:74:1a:75:b6:f2:08:e4:cc:0a:81:
aa:42:b3:94:af:bd:24:ff:e8:00:f9:d2:0e:f3:45:d8:99:18:
43:73:99:1c:0f:f3:ea:b7:de:da:d6:0e:de:c1:ed:da:c8:95:
02:4e:89:6b:01:95:74:c9:7c:c2:26:e1:31:4a:66:60:89:15:
a5:b7:84:fa:b2:7b:7f:63:db:52:17:98:c7:43:fd:95:7b:80:
f2:08:d2:5f:fc:3a:38:ef:23:19:fd:46:c0:38:cd:27:d0:8f:
41:e9:73:b2:4f:ca:05:87:43:16:78:d2:15:da:80:5e:b9:90:
de:66:20:b8:d6:87:b3:bd:fd:87:08:c6:13:89:58:37:c4:14:
6e:eb:0a:0f:b0:be:a3:bf:2a:df:13:fa:64:48:20:e9:27:99:
18:ec:b2:88:a2:63:b7:3d:3a:d1:5a:48:c8:ce:76:17:58:c4:
f5:4a:25:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:59:26 2025 by rpki-client